Nudwubbles

Two questions:

To what extent should the government be involved with the cybersecurity of private companies that are part of the nation's critical infrastructure?

What are some alternatives to bills like CISPA and CISA that you would support? The presidential initiatives and executive orders relating to cybersecurity arguably first entered the political stage back in 1996 with the president's commission on critical infrastructure protection. Since then, Bush's 2003 cybersecurity initiative and his previously classified 2008 directive, along with Obama's 2009 speech, 2013 executive order (improving critical infrastructure cybersecurity), and now his 2015 exec orders that attempt to prescribe ramifications for cyber baddies that can be processed in the American legal system make it abundantly clear that creating an environment of efficient information sharing is the right way to go. So what alternatives would you suggest? Are the executive orders that create organizations like ISAOs good enough without legislation to back them?

Thanks!

Were you paid on a salary or a per-episode basis?

I don't think the legislation's goal here is to directly address the recent hacks and information leaks though. It just incentivizes sharing information that may or may not be related to vulnerabilities with the hope that advanced knowledge of such threats will aid in cyberattack threat mitigation. What else would you suggest if legislation-backed information sharing is not the way to go?